Wishbone is one of the top 10 most popular social networking apps for iPhone in the US, according to analyst firm App Annie. It lets users vote on pop culture-based questions like whether they prefer Dominos or Pizza Hut, whether they prefer eyeshadow or eyeliner, or which Kendall Jenner outfit they like best. After picking a side, they get to see how their friends voted. Hackers apparently accessed the app's database through an unprotected API and took an estimated 2.2 million email addresses and over 287,000 cellphone numbers, along with personal information like birthdates and gender. No passwords or financial information were stolen, Wishbone said.
Wishbone owner Science Inc. told Motherboard the security hole is now fixed, and offered an apology to users in the following statement:
We value your privacy and deeply regret that this incident occurred. Maintaining the integrity of your personal information is extremely important to us. We sincerely apologize for any inconvenience this incident may have caused you. We are continuing to investigate this matter and have taken and will continue to take appropriate action to prevent future similar incidents. Please be assured that we will keep you informed of any developments in the investigation that may be of importance to you.